4 matches found
AZL-35169 CVE-2023-3255 affecting package qemu for versions less than 8.2.0-1
A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib buffer in the inflatebuffer function. This could allow a remote authenticated client who is able to send a...
Malicious code in discord-webhoo (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx fa7963a8da1102b0d2c2eae15aeecd878adb1416bc8c66b6e4a7384f16c5d32d Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in requests-toolbet (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx b57f7324fa1fbd52b7cb0bee724a6fc412a51c593cb09316930fa473d70d8c5b Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Remote Desktop Services Remote Code Execution Vulnerability
A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an authenticated attacker abuses clipboard redirection. An attacker who successfully exploited this vulnerability could execute arbitrary code on the victim system. An attacker cou...